Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
File: nnld0BGVNBRxXMaHXf05xh5Rgcg.mft (raw, json)
Hash identifier: wzXqkj5sbn/clMZ31WmHrgE0wlAZAZlElAoT4nsF6mI=
Subject key identifier: 43:7C:60:E9:77:5A:23:CE:41:48:2F:39:A7:E4:73:2A:C1:02:21:8B
Authority key identifier: 9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8
Certificate issuer: /CN=9e795dd011953414715cc6875dfd39c61e5181c8
Certificate serial: 019DA52F8725905B6B37794B70DEFA3DDF22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
Manifest number: 25
Signing time: Sun 19 Apr 2026 10:00:48 +0000
Manifest this update: Sun 19 Apr 2026 10:00:48 +0000
Manifest next update: Mon 20 Apr 2026 10:00:48 +0000
Files and hashes: 1: azUbLhud6FB2bh2XAm_dpaxr0YI.roa (hash: aywHfLorqu+EfWUXaUMykj9Eo6Bcs30AyfzDLZ1+ymg=)
2: nnld0BGVNBRxXMaHXf05xh5Rgcg.crl (hash: 3BOnaitg4QLi3ZrNyDbb9Wz/bLPAsODbxclaJljSVlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:87:25:90:5b:6b:37:79:4b:70:de:fa:3d:df:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e795dd011953414715cc6875dfd39c61e5181c8
Validity
Not Before: Apr 19 10:00:48 2026 GMT
Not After : Apr 20 10:00:48 2026 GMT
Subject: CN=437c60e9775a23ce41482f39a7e4732ac102218b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:2a:f4:de:f6:5c:89:d0:f2:a6:af:47:da:
58:3d:ca:53:a0:d0:11:d1:f3:db:6f:a4:d7:0b:e7:
7d:50:c2:39:de:31:74:0f:8e:c5:88:02:ae:07:f4:
44:86:ca:47:18:aa:5f:26:9f:76:35:9b:23:95:3f:
30:20:32:48:f6:01:d6:1e:93:14:4d:1e:f6:69:29:
66:50:90:25:e8:63:26:31:8b:41:52:a2:e5:29:b6:
98:4f:5c:12:5e:f6:55:c9:fb:f2:3c:db:5c:0c:23:
e1:53:8a:ab:47:e6:6c:66:68:49:fb:38:61:4e:7b:
10:98:bf:fb:1d:08:11:33:79:71:14:69:14:23:bc:
84:0f:b2:22:5f:ef:f2:31:44:77:03:18:34:ea:18:
e3:1e:33:10:5e:0c:ce:63:64:e9:c6:8f:67:9b:61:
62:ae:37:ed:fe:93:8c:c6:23:bc:8d:3b:87:b6:7e:
a8:2b:fc:d1:dd:70:4f:d0:6e:a9:4f:8b:d7:20:c5:
d7:1d:d1:c5:a3:d2:9b:4e:b1:da:aa:c9:47:f3:a0:
19:d8:bc:53:f7:30:ec:c9:10:8a:3f:40:ab:32:c7:
67:af:06:fb:12:2d:0d:17:f2:31:3e:9d:7b:65:e0:
f6:70:f4:09:56:b9:0d:b5:2b:90:38:a4:f8:17:b3:
ef:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7C:60:E9:77:5A:23:CE:41:48:2F:39:A7:E4:73:2A:C1:02:21:8B
X509v3 Authority Key Identifier:
keyid:9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:2e:84:54:82:a6:79:48:2d:43:b5:a0:65:8e:a3:0c:84:ee:
a9:2b:d2:24:eb:66:43:fe:4c:c9:ef:23:af:fe:bd:c2:01:a7:
98:84:98:3d:d3:cf:3f:43:1c:86:e7:44:f8:25:ea:75:e9:e8:
db:da:bc:ce:ef:9b:ef:27:e6:fb:af:63:a2:1a:36:43:3f:48:
48:1f:3d:7f:88:4c:6e:7a:cc:0f:08:95:4d:8c:4b:1d:7c:78:
2f:13:33:c8:7e:6f:22:73:10:86:fe:3c:dc:27:a0:74:29:ed:
4f:d2:d5:0b:9d:fa:80:d1:6e:fb:8b:d8:02:32:a6:fb:5d:e8:
53:04:7a:76:6f:6d:f9:be:d7:4c:5a:b1:77:27:70:72:80:ce:
02:fe:75:9e:ac:e7:e8:76:88:58:e1:a2:3f:96:26:d2:23:bb:
52:23:25:4f:db:76:54:2e:8f:a7:a0:33:9d:5e:56:0c:01:9d:
93:ef:71:bf:df:13:27:ab:16:a7:f3:02:2f:be:5c:d1:11:1b:
00:06:bd:f7:c4:61:91:72:4b:17:b5:2c:81:00:e2:bc:00:0a:
68:e4:87:87:21:54:8c:af:1f:24:c0:6c:75:89:12:5f:32:05:
7c:43:3f:d0:41:48:a7:2f:55:c4:c9:97:3e:63:ce:79:24:87:
6b:b2:f0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:24:58 2026 by rpki-client